🔍
CSAPP
  • 🔍CSAPP
  • Overview
    • 💡Why??
    • ✨Features
      • ⛏️pypi_data_harvest.py
      • 🗃️pypi_package_validator.py
      • 🎯audit_pypi_info_db.py
  • Fundamentals
    • 🛠️Getting set up
  • Web App Walkthrough
    • 🏠Homepage
    • 🧐Explore Page
  • Threat Hunting
    • 📔PyPI's Terms of Use
    • ❔Useful SQL Queries
    • 🕵️‍♂️Analyzing A Python Package
    • 👾Malicious Package Techniques
    • 🎯Hunting Tips
Powered by GitBook
On this page

Project Links - Github

Malicious packages imitating another package will use the same Github link. Look for PyPI packages that link to the same Github project. If the package was also uploaded recently, then that is a strong indicator of a malicious package.

New Package with lots of Stars

When a package uses a Github link of another project, that package will also reflect the Github stats the project has on PyPI. Look for newly uploaded packages with a large amount of Github stars (1,000+).

Last updated 1 year ago

  • Project Links - Github
  • New Package with lots of Stars
PreviousMalicious Package Techniques
  1. Threat Hunting

🎯Hunting Tips

Tips for finding suspicious packages